Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2018-12520

Good to know:

icon

Date: July 5, 2018

An issue was discovered in ntopng 3.4 before 3.4.180617. The PRNG involved in the generation of session IDs is not seeded at program startup. This results in deterministic session IDs being allocated for active user sessions. An attacker with foreknowledge of the operating system and standard library in use by the host running the service and the username of the user whose session they're targeting can abuse the deterministic random number generation in order to hijack the user's session, thus escalating their access.

Language: JS

Severity Score

Related Resources (7)

https://gist.github.com/Psychotropos/3e8c047cada9b1fb716e6a014a428b7f
https://nvd.nist.gov/vuln/detail/CVE-2018-12520
https://www.exploit-db.com/exploits/44973/
http://seclists.org/fulldisclosure/2018/Jul/14
https://people.canonical.com/~ubuntu-security/cve/CVE-2018-12520
https://github.com/ntop/ntopng/commit/30610bda60cbfc058f90a1c0a17d0e8f4516221a
https://www.mend.io/vulnerability-database/CVE-2018-12520

Severity Score

Weakness Type (CWE)

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

CWE-335

Top Fix

icon

Upgrade Version

Upgrade to version 3.4

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us